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(57) ABSTRACT 

An arrangement for effecting secure transactions having a 
device interfaced to at least one communications network is 
proposed. The device has two modes of operation, and 
includes a controller that controls the device in a first mode 
of operation and a display coupled to the controller in the 
first mode. The device further includes a secure part for 
controlling the device in a secure mode of operation. This 
secure part has a secure memory for storing data. This 
memory is directly coupled to the display in the secure mode 
of operation. Preferably, the device also includes a keypad or 
other input device that is directly coupled to the secure 
memory in the second mode. The hardwired connections to 
secure memory in the secure mode ensures that data shown 
on the display is indeed the data that is processed and signed 
off in the secure mode of operation. 

19 Claims, 2 Drawing Sheets 
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ARRANGEMENT FOR EFFECTING SECURE memory area, for sioring secure data. This memory is 

TRANSACTIONS IN A COMMUNICATION directly coupled lo the display in the second or secure mode 

DEVICE of operation. Preferably, the device also includes a keypad, 

keyboard or other input device, which is similarly coupled 

This application claims priority under 35 U.S.C. §§119 5 to the secure memory by a direct connection in the second 

and/or 365 to 9903036-3 filed in Sweden on Aug. 27, 1999; mode of operation. The arrangement further includes a 

the entire content of which is hereby incorporated by refer- module for generating and storing secure data, such as keys, 

ence. certificates and digital signatures, as well as encrypting and 

decrypting data and verifying signatures. This module is 

BACKGROUND io coupled to the secure memory. At least part of the secure part 

The invention is directed to devices capable of commu- ma y be moun,ed on a carrier, such as a smart card, 

nicating over a communication network and that can also In accordance with a further aspect, the invention resides 

effect remote secure transactions, such as electronic pay- in such a self-contained secure part arrangement that may be 

ment and the like. Such devices include mobile phones PCs, integrated on a carrier. 

terminals laptop computers, personal data assistants and 15 By providing a hardwired connection between the display 

electronic organisers. and the secure memory and possibly also between the 

The use of open platforms such as PCs and terminals both keyboard and secure memory, with both connections being 
fixed and mobile for communicating over public networks or utilised in the secure mode only, the user can be certain that 
the Internet and for executing secure transactions is becom- data displayed on the screen of the device and input into the 
ing increasingly widespread with the expansion of internet 20 keypad is the data that will be processed and transmitted to 
commerce and the possibilities provided by electronic cash a remote party. In particular, the user can be certain that data 
transactions and smart cards. For example, WO 96/25828 relating to a financial or other sensitive transaction shown on 
suggests a method for using a mobile phone for effecting the display is indeed the data that he is committing himself 
financial transactions such as payments by providing finan- to when he signs this off. Data is exchanged using the direct 
cial applications on a smart card that can be inserted into the pathway between the display and the secure memory. Mali- 
mobile phone. The application has two modes of operation; cious programs, such as viruses, which may reach and 
a first mode in which it is passive, and therefore receives corrupt the memory of the mobile phone when in its normal 
instructions from the master controller of the mobile phone operating mode, for example using WAP or GPRS, will not 
or other controlling applications, and a second mode in be able to gain access to the secure memory. Thus informa- 
which it controls the operation of the mobile phone. This tion displayed on the display prior to its signing off by the 
includes controlling the operation of a keypad and a display cryptographic module cannot be tampered with, 
or status indicator of the phone. Furthermore, by separating the two modes of operation, it i 

While in the past mobile phones have been relatively safe is ensured that data contained in the secure memory cannotn 

from infiltration by malicious programs such as viruses, with 3S be accessed when the device is in the normal mode of i 

the evolution of protocols such as wireless application operation. This ensures that data remaining in memory after 4 

protocol (WAP) and GPRS that enable a mobile phone user termination of, for example, a financial transaction is safe. * 

easy access to computer networks such as the internet, the * 

security of data held and processed within a mobile phone BRIEF DESCRIPTION OF THE DRAWINGS 

can no longer be assured. In particular, there is a danger that 40 Furlhef ob ^ and advantages of the present invention 

data may be corrupted within the mobile phone or other win become t from the mow - description of the 

device, rhis means that the user cannot be sure that the data fcrred cmbodimcnts that arc iven b of , c 

, 10 confirms : nfor u matlon on a 15 with reference to the accompanying drawings. In the figures: 

indeed the data that is transmitted to the remote party. There , , . ....... 

is also a danger that confidential information such as finan- 45 A . 1 d ^. ict f a " T WW * P * * ^ 

cial data, keys, passwords or PIN-codes entered on the diagram and including the secure arrangement in accordance 

keypad or keyboard could be collected over the network. Wlth lhe P resent invenll0n i 

The same is true for any open platform such as a PC, FIG. 2 schematically depicts part of the mobile phone of 

terminal, laptop or electronic personal assistant that is con- FIG - 1 illustrating the secure arrangement in detail, 

nected to a network and open to malicious programs such as < n 

viruses and the like. DETAILED DESCRIPTION 

In view of this prior art, it is an object of the present FIG. 1 is a schematic representation of a mobile tele- 
invention to provide an arrangement that ensures an phone. Central to the operation of the device is a phone part 
increased level of security for devices that interfaced with a 1, which typically comprises a central controller with asso- 
communication network to enable the safe execution of 55 ciated program and temporary memory, for controlling the 
sensitive transactions. operation of mobile phone in a known manner. The phone 
SUMMARY mc * ude a terminal adapted to receiving a removable 

card 2, such as a SIM card (subscriber identity module) for 

The invention resides in an arrangement for effecting user identification. The phone further includes known 

secure transactions incorporated in a device having an 60 peripheral elements of mobile phones such as a keypad or 

interface to at least one communications network. The keyboard 3, a display 4 and an interface to a communication 

device has at least two modes of operation, and includes a network 5, which will typically include a radio frequency 

controller that controls the device in a first mode of opera- transceiver for communicating with a radio communication 

tion and a display which is coupled to the control means in network, such as GSM. Other conventional elements such as 

the first mode of operation. The device further includes a 65 a microphone, headphone, and ring generator will also be 

secure part for controlling the device in a second, or secure present but are not illustrated here. The phone further 

mode of operation. This secure part has a secure memory, or includes an assembly 6 for enabling short distance commu- 
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nication. This may include an infrared receiver and trans- record that is updated regularly would require permanent 

mitter or a transmitter and receiver for short distance radio memory. The secure part 10 further includes a cryptographic 

communication, such as for a "piconet". module 15 for generating, verifying and storing keys, gen- 

A mode selector 7 is connected between the phone part 1 erating digital signatures and for encrypting and decrypting 

and the peripheral elements 3, 4, 5, 6 of the mobile phone. 5 data sent and received over the communication network 5 or 

This mode selector 7 is connected to a mode switch 8, which the IR link 6, and that relate to secure transactions. The 

preferably takes the form of a manual switch such as a cryptographic module 15 is connected to the CPU and also 

button or the like on the casing of the mobile phone. directly to the secure memory 14. 

Alternatively, the mode switch 8 may be implemented using ^ disp , ay 4 ^ ako to [hc aKfm mcmory 14 by 

software .n which case the user selects the mode using the , 0 a dircc| connection 41. This connection 41 allows the 

keypad 3 and dtsplay 4. The selector 7 is further connected display 4 [0 access lhe XCUK mcmory direcll whcn thc 

to a mode indicator 9, which may be an LED, that w,U be ht devicc ^ operating in a secure mode. In the other mode of 

or unlit depending on the mode of operation. Alternatively operationj acccss to mis x(Mre memory 14 is impossible, 

a specific symbol or pictogram may be delayed on the The access tQ th( . phon6 part j jn me norma , mod<; of 

display 4 to indicate the mode of operation. In this case, 15 operation jg illustrated in FIG. 2 by the dotted block arrow 

measures should be taken to ensure that either thc pictogram m The conncction 41 between thc secure memory 14 and 

or the area of display can be influenced only when the phone Ae display 4 is preferably implemented in hardware, and 

is in secure mode. The mobile phone further mcludes a may indudc a swi , ch 42 whicn is ac(uatcd swit c h i n g 

secure part 10, which is similarly connected to the mode of the modc switc h H or mode selector 7. However, this 

switch 7. Both the phone part 1 and the secure part 10 20 connection 41 could be protected by software, such that it is 

interface and exchange data with the peripheral elements of uliIiscd on| in the secure modc of opcrat i on . 

the phone through the mode selector, as indicated by the _ ... . A . , . , .... 

bidirectional I/O arrows 20, 21 in FIG. 1. The financial part „ B > ' P r ° vidln 8 a hardwired connection between the display 

10 may be a self-contained module within the mobile phone, 4 ' 1 ? e secure 14 ,hat 15 " tllls ? d ,h f 

or it may be provided in part or fully on an external platform 25 m0de * *f V* r **" * Ce ? m T dala dls P la y ed 0D the 

such as a removable smart card 11. To this end, the mobile S " ee " re ' a,m S ,0 a finan f 1 ia 1 ^ ° r sensitive transaction ,s 

phone includes a smart card adapter terminal, represented by ind& * the d / a , 1 hat ™" 1x5 s, ^ d off 1 usm 8 ,h ° c ™"°- 

the thick line 110 in FIG. 1. The smart card 11 itself is also gra P h,C "^ ule 15 ' P a ' a . » exch f n f d *» d "«< 

provided with a terminal 111 for connecting to the adapter 41 betWeen the a ° d ""F?" memC 7 l \ 

jjq Malicious programs, such as viruses, which may reach and 

™ ... , ui r • j - 30 corrupt the memory of the mobile phone part 1 when the 

The mobile phone is capable of operating in two distinct . • ■ , P , 11/An 

. . a t . c v . . * c . mobile station is in normal mode, for example using WAP or 

modes. In a first mode of operation, the phone functions as rDDC •„ t „■ „ rtrtQ „„ . i A ^, 

. , GPRS, will not gain access to the secure memory 14. Thus 

a conventional mobile phone. In the second, or secure, mode . i- • u - tL . c 

e . ... f , . . such malicious programs could not tamper with information 

of operation, applications relating to secure transactions A; cn }** t0 r* ~« * ho a «™ * n * u »u 

. n jl \l .^a t_ u • displayed on the display 4 prior to its signing off by the 

controlled by the secure part 10 are run by the mobile phone. 35 _l t ' /« r> , V a i 

-pn . , e r , j, . .... cryptographic module 15. Once the cryptographic module 

The mode switch 8 allows the user to determine in which k u, *u a ^ ; ■ a ■ .u 

. # . . . t . . . , t ~ ,. . 15 has encryptea the information contained in the secure 

mode the mobile station should operate. Depending on the , , A v* *„„,.„w~ ^ 

, • . « . , *\ _ 6 . . memory 14 for transmission to a remote party, any corrup- 

posmon of the mode switch 8 the mode selector 7 swnches don 0 / the d da , a ^ be > ^ ^ 

between operation conu-olled by the phone part 1 and „ , he ^ , ^ fa err0f dete ( f y 

operation controlled by the secure part 10. The mode indi- 40 ' 

cator 9 indicates the choice of mode. In the preferred Preferably, the keyboard 3, which its associated keyboard 

embodiment wherein the mode indicator 9 comprises an buffer ( not shpwn ) IS aUo direcll y conne cled to the secure 

LED, this is lit when the mobile phone is in secure mode. memor y 13 b V a connection 31, with this connection 31 

Turning now to FIG. 2, the secure part 10 is illustrated in bein S °Pf n onl y m the secure mode of operation, as for the 

more detail. A central processor or CPU 12 controls the 45 dls P la y 4l Here a S ain me conneclion 31 could comprise a 

operation of the secure part 10. The CPU exchanges data SWItch 32 which 1S closed u P on actuali °n of the mode 

with the peripheral devices as illustrated by the dotted block selector 7 or mode switch 8 only in the secure mode of 

arrow I/O. A non-volatile memory 13, which may be an operation. Alternatively, blocking of the connection 31 could 

EPROM is provided for storing various software applica- be implemented in software. This additional hardwired 

tions 131. These applications 131 relate to transactions of a 50 connectlon 31 further increases the level of security, as any 

sensitive nature and may include, but are not limited to, data enlered b y lhe user Wl11 be in P ul directl y t0 the secure 

applications for remote payment by electronic cash, for memory and will not have to be fetched from the memory of 

debiting, crediting or consulting debit or credit accounts me mobile P hone P ait L » wmch ma y ia y 11 °P en 10 corru P- 

with a financial institution or for executing non-financial ll0n ' 

undertakings such as electronic ticketing or signing of 55 Th c secure memory 14 is accessed only by the crypto- 

contracts, or the like. Preferably these applications are graphic module 15 and the CPU 12, display 4 and possibly 

certified by one or more financial or legal institutions. The the keypad 3, or rather its buffer, in the secure mode of 

non-volatile memory 13 also preferably contains a secure operation. In the normal mobile phone mode of operation, 

operating system 132, for controlling the running of the access to this secure memory 14 is impossible. Thus any data 

secure applications. The CPU 12 is also connected to a 60 remaining in the secure memory 14 after a secure transaction 

secure memory 14. This may be implemented in volatile is terminated is safe. 

memory, such as RAM or in non-volatile memory such as When in the secure mode of operation the mobile phone 

EEPROM, depending on the nature of the information is able to run only the software contained in the secure part 

stored. For example, a balance enquiry from a bank or a 10, and which is preferably certified by financial institutions, 

payment requiring only the transmission of a secure identi- 65 Moreover, the exclusive control of the display 4 and possibly 

fication would not require permanent memory. The payment also the keypad 3 by the secure part 10 in the secure mode 

by electronic cash, where the mobile phone stores a credit further ensures that information input on the keypad 3 



02/07/2004, EAST Version: 1.4.1 



US 6,61 

5 

cannoi be read by other applications in the mobile phone part 
1. Only secure software contained in the secure part 10 is 
able to present information on the display, and when digital 
signatures are created by the cryptographic module, the 
hardwired connection between the secure memory 14 and 
the display 4 means that the information displayed on the 
display is identical to the information that is digitally signed. 

However, in the secure mode of operation, the mobile 
phone may continue to process calls. The secure part 10 has 
control of the keypad and display, but other functions not 
requiring these peripheral devices may still be carried out by 
the mobile phone. This allows a payment or other transac- 
tion to be made during an ongoing telephone call. 

As mentioned above, some of the components of the 
secure part 10 illustrated in FIG. 2 may be comprised in a 
smart card 11. These components include the CPU 12, its 
associated non-volatile memory 13, the cryptographic 
device 15 and the secure memory 14. It will be understood 
by those skilled in the art that a smart card 11 may carry, all 
or only some of these components. The display device 4 and 
keypad 3 obviously form part of the mobile phone. The 
direct hardwired connections 31, 41 between the display 4 
and keypad 3, respectively, and the memory 14 must also be 
implemented at least in part in the mobile phone. These lines 
in addition to the I/O bus will therefore be present in the 
terminal adapters 110 and 111 of the mobile phone and the 
card. However, the switches 32, 42, could either be inte- 
grated in the mobile phone platform or be disposed on the 
smart card, that is on either side of the smart card adapters 
110, 111 provided in the mobile phone and the card 11, 
respectively. It is, however, preferable that the switches be 
provided within the mobile phone to simplify their control 
by the mode selector 7. Preferably, the secure memory 14 
and the CPU 12 are implemented on the mobile phone 
platform to ensure minimum delay when accessing the 
keyboard 3 and display 4. The applications 131 and cryp- 
tographic module 15 with the stored keys could be provided 
on the smart card 11, in which case the application could 
usefully be downloaded into a reserved memory area on the 
mobile phone for execution. 

While in the embodiment described above, the secure part 
10 includes a dedicated CPU, this need not be the case. The 
central controller of the mobile phone part 1 may accom- 
plish the tasks effected by this CPU, Furthermore, the secure 
memory 14 need not be a separate component, but could be 
a reserved area of memory provided in the mobile phone 
part. Access to this reserved memory area would be provided 
only for the cryptograhic module 15 and the display 4 and 
keypad 3 when the phone is in secure mode. 

The arrangement according to the invention is not limited 
to mobile phones, but may be employed in any mobile or 
indeed fixed terminal having access to a communications 
network. Examples of these include terminals, PCs, laptop 
computers, electronic organisers, personal digital assistants 
and internet access devices. The division of these devices 
into a normal operating part and a secure part will be 
analogous to that illustrated in the figures for the mobile 
phone part 1 and the secure part 10. In these other devices, 
a dedicated secure memory or memory area will be provided 
that can be accessed only by the cryptographic module and 
the display and possibly also the keyboard in the secure 
mode of operation. As for the mobile phone described 
above, the secure part 10 could be provided at least in part 
by a smart card. Also, the secure part need not dispose of a 
dedicated CPU but could use the processor already present 
in the platform device. 
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What is claimed is: 

1. An arrangement for effecting secure transactions, com- 
prising: 

a device having an interface to at least one communica- 
5 tion network and having a non-secure mode and a 
secure mode of operation, said secure mode providing 
for encryption and decryption of data sent over the 
communication network for effecting secure transac- 
tions; 

10 a controller for controlling the device in the non-secure 
mode of operation; 
a display coupled to the controller in the non-secure mode 

of operation; and 
secure means for controlling the device in the secure 
15 mode of operation, the secure means including a 
memory for storing secure data; 
wherein the display is directly coupled to the secure-data 
memory in the secure mode of operation. 

2. The arrangement of claim 1, further comprising an 
20 input device that is coupled to the controller in the non- 
secure mode of operation and directly coupled to the 
memory in the secure mode of operation. 

3. The arrangement of claim 2, wherein the input device 
is coupled to the memory by a hardwired connection com- 

25 prising a second switch. 

4. The arrangement of claim 1, wherein the display is 
coupled to the memory by a hardwired connection compris- 
ing a second switch. 

5. The arrangement of claim 1, further comprising a first 
30 switch for switching the mode of operation of the device 

between the non-secure and secure modes. 

6. The arrangement of claim 5, wherein the second switch 
is controlled by the first switch. 

7. The arrangement of claim 5, wherein the first switch 
35 includes a manually operable switch disposed on the device. 

8. The arrangement of claim 1, further comprising an 
indicator for indicating the operating mode of the device. 

9. The arrangement of claim 1, wherein the secure means 
includes at least one application for processing secure data. 

40 10. The arrangement of claim 9, wherein the secure means 
includes a processor for executing the at least one applica- 
tion when the device is in the secure mode of operation, 
wherein execution of the application results in generation, 
verification, and storage of keys, and encryption and decryp- 

45 tion of data sent and received over the communications 
network. 

11. The arrangement of claim 10, wherein the processor is 
inoperative when the device is in the non-secure mode of 
operation. 

5Q 12. The arrangement of claim 1, wherein the secure means 
includes a data generator that is coupled to the memory and 
that generates secure data. 

13. The arrangement of claim 1, wherein at least a portion 
of the secure means is disposed on a carrier adapted to 

55 connect with the device. 

14. The arrangement of claim 13, wherein the carrier is a 
smart card. 

15. The arrangement of claim 1, wherein the device is a 
mobile communication device. 

6Q 16. An arrangement for effecting secure transactions, 
comprising: 

at least one application for processing secure data; 

a processor for executing the at least one application, 

thereby generating encrypted data; 
6s a secure memory for storing secure data; and 

means for connecting with a communications device 

having a display, said connecting means comprising: 
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means for passing the encrypted data to and from a means includes at least one further line for directly coupling 

communications device that transmits and receives me secure memory with the input device. 

the encrypted data over a communications network; 14 > „ _ t c , . % , t jL . , . . 

aQtJ Jr ' 18. The arrangement of claim 16, further including a data 

at least one line for directly coupling the secure 5 g^rator for generating secure data, 
memory with the display on the communications Th e arrangement of claim 16, wherein the arrange* 
device. ment is disposed on a carrier. 
17. The arrangement of claim 16, wherein the communi- 
cations device also has an input device, and the connecting ***** 
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